Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
450
Views
0
Helpful
0
Replies

Error in Nexus 9000 and ACS

Majed Zouhairy
Level 1
Level 1

‎07-10-2017 06:06 AM - edited ‎03-11-2019 12:50 AM

Peace, i added the following commands:

aaa authentication login default group test
aaa authorization commands default group test
aaa accounting default group test
tacacs-server directed-request

tacacs-server host 10.18.21.15 key 7 "feyhjkzd"
aaa group server tacacs+ test
    server 10.18.21.15
    use-vrf management

snmp-server user karol network-operator auth md5 0xd068621df54e454beb3bca82a64aia99 priv aes-128

now when i log in as karol i get assigned network-operator role

in acs 5.3  i added to policy elements=>shell profiles=>nexus with custom attributes:

attribute:shell:roles, requirement: optional, value: network-admin vdc-admin

if i log in as someone else i get user role as vdc-operator.

upon executing a command:

i get:

Error: AAA authorization failed AAA_AUTHOR_STATUS_METHOD=17(0x11)

what to do?

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents